Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:27 a.m.7 views

CVE-2021-33210

An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...

4.3CVSS6.8AI score0.00753EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-19922

Malware in sbrugna...

4.3CVSS4.9AI score0.00753EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/21 7:57 p.m.3 views

CVE-2025-41415 AVEVA PI Integrator Insertion of Sensitive Information into Sent Data

The vulnerability, if exploited, could allow an authenticated miscreant with privileges to access publication targets to retrieve sensitive information that could then be used to gain additional access to downstream resources...

7.1CVSS7.1AI score0.00334EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/17 11:22 p.m.6 views

CVE-2025-24850

An attacker can export other users' plant information...

6.9CVSS6.9AI score0.00295EPSS
Exploits0References3
OSV
OSV
added 2025/04/15 10:15 p.m.4 views

CVE-2025-24850

An attacker can export other users' plant information...

6.9CVSS5.8AI score0.00295EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/15 9:33 p.m.20 views

CVE-2025-24850 Growatt Cloud portal Authorization Bypass Through User-Controlled Key

An attacker can export other users' plant information...

6.9CVSS0.00295EPSS
Exploits0References1
CVE
CVE
added 2025/04/15 9:33 p.m.53 views

CVE-2025-24850

Growatt Cloud Applications vulnerability CVE-2025-24850 allows exporting other users’ plant information due to improper access control/auth handling. Documented effects include exposure of user plant data and other sensitive information across API endpoints. Connected sources cite the advisory fr...

6.9CVSS5.4AI score0.00295EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/15 9:33 p.m.5 views

CVE-2025-24850 Growatt Cloud portal Authorization Bypass Through User-Controlled Key

An attacker can export other users' plant information...

6.9CVSS5.6AI score0.00295EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/15 12:0 a.m.3 views

Growatt Cloud Applications 安全漏洞

Growatt Cloud Applications is a monitoring platform from Growatt, a Chinese company. A security vulnerability exists in Growatt Cloud Applications version 3.6.0 and prior versions, which stems from an attacker being able to export other users' plant information...

6.9CVSS6.6AI score0.00295EPSS
Exploits0References1
NVD
NVD
added 2021/11/03 10:15 a.m.21 views

CVE-2021-33210

An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...

4.3CVSS0.00753EPSS
Exploits0References2
Prion
Prion
added 2021/11/03 10:15 a.m.16 views

Authentication flaw

An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...

4.3CVSS4.7AI score0.00753EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/11/03 9:56 a.m.25 views

CVE-2021-33210

An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...

4.9AI score0.00753EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/11/03 12:0 a.m.4 views

Fimer Aurora 授权问题漏洞

Fimer Aurora is a scalable web-based power plant management platform from Fimer Italy. It is used to enable customers to remotely manage solar power plants in a variety of markets. Fimer Aurora suffers from an authorization issue vulnerability that arises from obtaining plant information without...

4.3CVSS5.2AI score0.00753EPSS
Exploits0References2
ICS
ICS
added 2014/02/13 7:0 a.m.53 views

Yokogawa Multiple Products Vulnerabilities

OVERVIEW Yokogawa reports that several buffer overflow vulnerabilities affect several of its products. Juan Vazquez of Rapid7 Inc.,Rapid7 Inc., http://www.rapid7.com, web site last accessed May 13, 2014. and independent researcher Julian Vilas Diaz reported to CERT/CC that they identified several...

9.3CVSS8AI score0.36035EPSS
Exploits6References10
Rows per page
Query Builder